npm - @j-schreiber/sf-cli-security-audit - Versions diffs - 0.7.0 → 0.8.0 - Mend

@j-schreiber/sf-cli-security-audit 0.7.0 → 0.8.0

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (150) hide show

package/oclif.manifest.json CHANGED Viewed

@@ -1,255 +1,4 @@
 {
-  "commands": {
-    "org:scan:user-perms": {
-      "aliases": [],
-      "args": {},
-      "description": "The quick scan does not need an audit config and does not create reports. The target org is scanned \"in memory\" and simply outputs information, where the searched user permissions",
-      "examples": [
-        "<%= config.bin %> <%= command.id %>"
-      ],
-      "flags": {
-        "json": {
-          "description": "Format output as json.",
-          "helpGroup": "GLOBAL",
-          "name": "json",
-          "allowNo": false,
-          "type": "boolean"
-        },
-        "flags-dir": {
-          "helpGroup": "GLOBAL",
-          "name": "flags-dir",
-          "summary": "Import flag values from a directory.",
-          "hasDynamicHelp": false,
-          "multiple": false,
-          "type": "option"
-        },
-        "name": {
-          "char": "n",
-          "description": "You can specify any valid user permission on your org, such as \"AuthorApex\", \"CustomizeApplication\" or \"ViewSetup\". If you are unsure what permissions are available on your org, initialise a new audit config and check the created userPermissions.yml.",
-          "name": "name",
-          "required": true,
-          "summary": "One or more permissions to be scanned.",
-          "hasDynamicHelp": false,
-          "multiple": true,
-          "type": "option"
-        },
-        "target-org": {
-          "char": "o",
-          "name": "target-org",
-          "noCacheDefault": true,
-          "required": true,
-          "summary": "The target org to scan.",
-          "hasDynamicHelp": true,
-          "multiple": false,
-          "type": "option"
-        },
-        "api-version": {
-          "description": "Override the api version used for api requests made by this command",
-          "name": "api-version",
-          "hasDynamicHelp": false,
-          "multiple": false,
-          "type": "option"
-        }
-      },
-      "hasDynamicHelp": true,
-      "hiddenAliases": [],
-      "id": "org:scan:user-perms",
-      "pluginAlias": "@j-schreiber/sf-cli-security-audit",
-      "pluginName": "@j-schreiber/sf-cli-security-audit",
-      "pluginType": "core",
-      "strict": true,
-      "summary": "Performs a quick scan to check permission sets and profiles for user permissions.",
-      "enableJsonFlag": true,
-      "isESM": true,
-      "relativePath": [
-        "lib",
-        "commands",
-        "org",
-        "scan",
-        "user-perms.js"
-      ],
-      "aliasPermutations": [],
-      "permutations": [
-        "org:scan:user-perms",
-        "scan:org:user-perms",
-        "scan:user-perms:org",
-        "org:user-perms:scan",
-        "user-perms:org:scan",
-        "user-perms:scan:org"
-      ]
-    },
-    "org:audit:init": {
-      "aliases": [],
-      "args": {},
-      "description": "Exports permissions (standard and custom), permission sets, profiles, users, etc from the target org. All classifications are initialised with sane defaults that you can customize later.",
-      "examples": [
-        "Initialise audit policies at the root directory\n<%= config.bin %> <%= command.id %> -o MyTargetOrg",
-        "Initialise audit config at custom directory with preset\n<%= config.bin %> <%= command.id %> -o MyTargetOrg -d my_dir -p loose"
-      ],
-      "flags": {
-        "json": {
-          "description": "Format output as json.",
-          "helpGroup": "GLOBAL",
-          "name": "json",
-          "allowNo": false,
-          "type": "boolean"
-        },
-        "flags-dir": {
-          "helpGroup": "GLOBAL",
-          "name": "flags-dir",
-          "summary": "Import flag values from a directory.",
-          "hasDynamicHelp": false,
-          "multiple": false,
-          "type": "option"
-        },
-        "target-org": {
-          "char": "o",
-          "name": "target-org",
-          "noCacheDefault": true,
-          "required": true,
-          "summary": "Target org to export permissions, profiles, users, etc.",
-          "hasDynamicHelp": true,
-          "multiple": false,
-          "type": "option"
-        },
-        "output-dir": {
-          "char": "d",
-          "name": "output-dir",
-          "required": false,
-          "summary": "Directory where the audit config is initialised. If not set, the root directory will be used.",
-          "default": "",
-          "hasDynamicHelp": false,
-          "multiple": false,
-          "type": "option"
-        },
-        "preset": {
-          "char": "p",
-          "description": "The selected preset is applied before any other default mechanisms (such as template configs). This means, values from a selected template override the preset. Consult the documentation to learn more about the rationale behind the default risk levels. The risk levels interact with the configured preset on profiles and permission sets and essentially control, if a permission is allowed in a certain profile / permission set.",
-          "name": "preset",
-          "summary": "Select a preset to initialise permission classifications (risk levels).",
-          "default": "strict",
-          "hasDynamicHelp": false,
-          "multiple": false,
-          "options": [
-            "strict",
-            "loose",
-            "none"
-          ],
-          "type": "option"
-        },
-        "api-version": {
-          "description": "Override the api version used for api requests made by this command",
-          "name": "api-version",
-          "hasDynamicHelp": false,
-          "multiple": false,
-          "type": "option"
-        }
-      },
-      "hasDynamicHelp": true,
-      "hiddenAliases": [],
-      "id": "org:audit:init",
-      "pluginAlias": "@j-schreiber/sf-cli-security-audit",
-      "pluginName": "@j-schreiber/sf-cli-security-audit",
-      "pluginType": "core",
-      "strict": true,
-      "summary": "Initialises classifications and policies for a security audit.",
-      "enableJsonFlag": true,
-      "isESM": true,
-      "relativePath": [
-        "lib",
-        "commands",
-        "org",
-        "audit",
-        "init.js"
-      ],
-      "aliasPermutations": [],
-      "permutations": [
-        "org:audit:init",
-        "audit:org:init",
-        "audit:init:org",
-        "org:init:audit",
-        "init:org:audit",
-        "init:audit:org"
-      ]
-    },
-    "org:audit:run": {
-      "aliases": [],
-      "args": {},
-      "description": "Loads a given audit config (a set of classifications and policies) and runs the policies against the target org. The audit run creates a comprehensive report that lists all executed policies and all resolved entities that were audited.",
-      "examples": [
-        "Audit the org MyTargetOrg with the config in configs/prod\n<%= config.bin %> <%= command.id %> -o MyTargetOrg -d configs/prod"
-      ],
-      "flags": {
-        "json": {
-          "description": "Format output as json.",
-          "helpGroup": "GLOBAL",
-          "name": "json",
-          "allowNo": false,
-          "type": "boolean"
-        },
-        "flags-dir": {
-          "helpGroup": "GLOBAL",
-          "name": "flags-dir",
-          "summary": "Import flag values from a directory.",
-          "hasDynamicHelp": false,
-          "multiple": false,
-          "type": "option"
-        },
-        "target-org": {
-          "char": "o",
-          "name": "target-org",
-          "noCacheDefault": true,
-          "required": true,
-          "summary": "The org that is audited.",
-          "hasDynamicHelp": true,
-          "multiple": false,
-          "type": "option"
-        },
-        "source-dir": {
-          "char": "d",
-          "name": "source-dir",
-          "required": false,
-          "summary": "Location of the audit config.",
-          "default": "",
-          "hasDynamicHelp": false,
-          "multiple": false,
-          "type": "option"
-        },
-        "api-version": {
-          "description": "Override the api version used for api requests made by this command",
-          "name": "api-version",
-          "hasDynamicHelp": false,
-          "multiple": false,
-          "type": "option"
-        }
-      },
-      "hasDynamicHelp": true,
-      "hiddenAliases": [],
-      "id": "org:audit:run",
-      "pluginAlias": "@j-schreiber/sf-cli-security-audit",
-      "pluginName": "@j-schreiber/sf-cli-security-audit",
-      "pluginType": "core",
-      "strict": true,
-      "summary": "Audit your org.",
-      "enableJsonFlag": true,
-      "isESM": true,
-      "relativePath": [
-        "lib",
-        "commands",
-        "org",
-        "audit",
-        "run.js"
-      ],
-      "aliasPermutations": [],
-      "permutations": [
-        "org:audit:run",
-        "audit:org:run",
-        "audit:run:org",
-        "org:run:audit",
-        "run:org:audit",
-        "run:audit:org"
-      ]
-    }
-  },
-  "version": "0.7.0"
+  "commands": {},
+  "version": "0.8.0"
 }

package/package.json CHANGED Viewed

@@ -1,7 +1,7 @@
 {
   "name": "@j-schreiber/sf-cli-security-audit",
   "description": "Salesforce CLI plugin to automate highly configurable security audits",
-  "version": "0.7.0",
+  "version": "0.8.0",
   "repository": {
     "type": "https",
     "url": "https://github.com/j-schreiber/js-sf-cli-security-audit"

package/lib/commands/org/audit/init.d.ts DELETED Viewed

@@ -1,19 +0,0 @@
-import { SfCommand } from '@salesforce/sf-plugins-core';
-import { AuditRunConfig } from '../../../libs/core/file-mgmt/schema.js';
-import { AuditInitPresets } from '../../../libs/conf-init/presets.js';
-export type OrgAuditInitResult = AuditRunConfig;
-export default class OrgAuditInit extends SfCommand<OrgAuditInitResult> {
-    static readonly summary: string;
-    static readonly description: string;
-    static readonly examples: string[];
-    static readonly flags: {
-        'target-org': import("@oclif/core/interfaces").OptionFlag<import("@salesforce/core").Org, import("@oclif/core/interfaces").CustomOptions>;
-        'output-dir': import("@oclif/core/interfaces").OptionFlag<string, import("@oclif/core/interfaces").CustomOptions>;
-        preset: import("@oclif/core/interfaces").OptionFlag<AuditInitPresets, import("@oclif/core/interfaces").CustomOptions>;
-        'api-version': import("@oclif/core/interfaces").OptionFlag<string | undefined, import("@oclif/core/interfaces").CustomOptions>;
-    };
-    run(): Promise<OrgAuditInitResult>;
-    private printResults;
-    private printClassifications;
-    private printPolicies;
-}

package/lib/commands/org/audit/init.js DELETED Viewed

@@ -1,72 +0,0 @@
-import { SfCommand, Flags } from '@salesforce/sf-plugins-core';
-import { Messages } from '@salesforce/core';
-import AuditConfig from '../../../libs/conf-init/auditConfig.js';
-import { isPermissionsConfig, isPolicyConfig, } from '../../../libs/core/file-mgmt/schema.js';
-import { AuditInitPresets } from '../../../libs/conf-init/presets.js';
-import { capitalize } from '../../../libs/core/utils.js';
-Messages.importMessagesDirectoryFromMetaUrl(import.meta.url);
-const messages = Messages.loadMessages('@j-schreiber/sf-cli-security-audit', 'org.audit.init');
-const presetFlag = Flags.custom({
-    char: 'p',
-    summary: messages.getMessage('flags.preset.summary'),
-    description: messages.getMessage('flags.preset.description'),
-    options: Object.values(AuditInitPresets),
-    default: AuditInitPresets.strict,
-})();
-export default class OrgAuditInit extends SfCommand {
-    static summary = messages.getMessage('summary');
-    static description = messages.getMessage('description');
-    static examples = messages.getMessages('examples');
-    static flags = {
-        'target-org': Flags.requiredOrg({
-            summary: messages.getMessage('flags.target-org.summary'),
-            char: 'o',
-            required: true,
-        }),
-        'output-dir': Flags.directory({
-            required: false,
-            char: 'd',
-            summary: messages.getMessage('flags.output-dir.summary'),
-            default: '',
-        }),
-        preset: presetFlag,
-        'api-version': Flags.orgApiVersion(),
-    };
-    async run() {
-        const { flags } = await this.parse(OrgAuditInit);
-        const auditConfig = await AuditConfig.init(flags['target-org'].getConnection(flags['api-version']), {
-            targetDir: flags['output-dir'],
-            preset: flags.preset,
-        });
-        this.printResults(auditConfig);
-        return auditConfig;
-    }
-    printResults(config) {
-        this.printClassifications(config.classifications);
-        this.printPolicies(config.policies);
-    }
-    printClassifications(classifications) {
-        Object.values(classifications).forEach((def) => {
-            if (isPermissionsConfig(def)) {
-                const perms = def.content.permissions ? Object.entries(def.content.permissions) : [];
-                if (perms.length > 0) {
-                    this.logSuccess(messages.getMessage('success.perm-classification-summary', [perms.length ?? 0, def.filePath]));
-                }
-            }
-        });
-    }
-    printPolicies(policies) {
-        Object.entries(policies).forEach(([name, def]) => {
-            if (isPolicyConfig(def)) {
-                if (def.filePath) {
-                    this.logSuccess(messages.getMessage('success.policy-summary', [
-                        capitalize(name),
-                        Object.keys(def.content.rules).length ?? 0,
-                        def.filePath,
-                    ]));
-                }
-            }
-        });
-    }
-}
-//# sourceMappingURL=init.js.map

package/lib/commands/org/audit/init.js.map DELETED Viewed

@@ -1 +0,0 @@

- {"version":3,"file":"init.js","sourceRoot":"","sources":["../../../../src/commands/org/audit/init.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,SAAS,EAAE,KAAK,EAAE,MAAM,6BAA6B,CAAC;AAC/D,OAAO,EAAE,QAAQ,EAAE,MAAM,kBAAkB,CAAC;AAC5C,OAAO,WAAW,MAAM,wCAAwC,CAAC;AACjE,OAAO,EAIL,mBAAmB,EACnB,cAAc,GACf,MAAM,wCAAwC,CAAC;AAChD,OAAO,EAAE,gBAAgB,EAAE,MAAM,oCAAoC,CAAC;AACtE,OAAO,EAAE,UAAU,EAAE,MAAM,6BAA6B,CAAC;AAEzD,QAAQ,CAAC,kCAAkC,CAAC,MAAM,CAAC,IAAI,CAAC,GAAG,CAAC,CAAC;AAC7D,MAAM,QAAQ,GAAG,QAAQ,CAAC,YAAY,CAAC,oCAAoC,EAAE,gBAAgB,CAAC,CAAC;AAI/F,MAAM,UAAU,GAAG,KAAK,CAAC,MAAM,CAAmB;IAChD,IAAI,EAAE,GAAG;IACT,OAAO,EAAE,QAAQ,CAAC,UAAU,CAAC,sBAAsB,CAAC;IACpD,WAAW,EAAE,QAAQ,CAAC,UAAU,CAAC,0BAA0B,CAAC;IAC5D,OAAO,EAAE,MAAM,CAAC,MAAM,CAAC,gBAAgB,CAAC;IACxC,OAAO,EAAE,gBAAgB,CAAC,MAAM;CACjC,CAAC,EAAE,CAAC;AAEL,MAAM,CAAC,OAAO,OAAO,YAAa,SAAQ,SAA6B;IAC9D,MAAM,CAAU,OAAO,GAAG,QAAQ,CAAC,UAAU,CAAC,SAAS,CAAC,CAAC;IACzD,MAAM,CAAU,WAAW,GAAG,QAAQ,CAAC,UAAU,CAAC,aAAa,CAAC,CAAC;IACjE,MAAM,CAAU,QAAQ,GAAG,QAAQ,CAAC,WAAW,CAAC,UAAU,CAAC,CAAC;IAE5D,MAAM,CAAU,KAAK,GAAG;QAC7B,YAAY,EAAE,KAAK,CAAC,WAAW,CAAC;YAC9B,OAAO,EAAE,QAAQ,CAAC,UAAU,CAAC,0BAA0B,CAAC;YACxD,IAAI,EAAE,GAAG;YACT,QAAQ,EAAE,IAAI;SACf,CAAC;QACF,YAAY,EAAE,KAAK,CAAC,SAAS,CAAC;YAC5B,QAAQ,EAAE,KAAK;YACf,IAAI,EAAE,GAAG;YACT,OAAO,EAAE,QAAQ,CAAC,UAAU,CAAC,0BAA0B,CAAC;YACxD,OAAO,EAAE,EAAE;SACZ,CAAC;QACF,MAAM,EAAE,UAAU;QAClB,aAAa,EAAE,KAAK,CAAC,aAAa,EAAE;KACrC,CAAC;IAEK,KAAK,CAAC,GAAG;QACd,MAAM,EAAE,KAAK,EAAE,GAAG,MAAM,IAAI,CAAC,KAAK,CAAC,YAAY,CAAC,CAAC;QACjD,MAAM,WAAW,GAAG,MAAM,WAAW,CAAC,IAAI,CAAC,KAAK,CAAC,YAAY,CAAC,CAAC,aAAa,CAAC,KAAK,CAAC,aAAa,CAAC,CAAC,EAAE;YAClG,SAAS,EAAE,KAAK,CAAC,YAAY,CAAC;YAC9B,MAAM,EAAE,KAAK,CAAC,MAAM;SACrB,CAAC,CAAC;QACH,IAAI,CAAC,YAAY,CAAC,WAAW,CAAC,CAAC;QAC/B,OAAO,WAAW,CAAC;IACrB,CAAC;IAEO,YAAY,CAAC,MAAsB;QACzC,IAAI,CAAC,oBAAoB,CAAC,MAAM,CAAC,eAAe,CAAC,CAAC;QAClD,IAAI,CAAC,aAAa,CAAC,MAAM,CAAC,QAAQ,CAAC,CAAC;IACtC,CAAC;IAEO,oBAAoB,CAAC,eAA8C;QACzE,MAAM,CAAC,MAAM,CAAC,eAAe,CAAC,CAAC,OAAO,CAAC,CAAC,GAAG,EAAE,EAAE;YAC7C,IAAI,mBAAmB,CAAC,GAAG,CAAC,EAAE,CAAC;gBAC7B,MAAM,KAAK,GAAG,GAAG,CAAC,OAAO,CAAC,WAAW,CAAC,CAAC,CAAC,MAAM,CAAC,OAAO,CAAC,GAAG,CAAC,OAAO,CAAC,WAAW,CAAC,CAAC,CAAC,CAAC,EAAE,CAAC;gBACrF,IAAI,KAAK,CAAC,MAAM,GAAG,CAAC,EAAE,CAAC;oBACrB,IAAI,CAAC,UAAU,CACb,QAAQ,CAAC,UAAU,CAAC,qCAAqC,EAAE,CAAC,KAAK,CAAC,MAAM,IAAI,CAAC,EAAE,GAAG,CAAC,QAAQ,CAAC,CAAC,CAC9F,CAAC;gBACJ,CAAC;YACH,CAAC;QACH,CAAC,CAAC,CAAC;IACL,CAAC;IAEO,aAAa,CAAC,QAAgC;QACpD,MAAM,CAAC,OAAO,CAAC,QAAQ,CAAC,CAAC,OAAO,CAAC,CAAC,CAAC,IAAI,EAAE,GAAG,CAAC,EAAE,EAAE;YAC/C,IAAI,cAAc,CAAC,GAAG,CAAC,EAAE,CAAC;gBACxB,IAAI,GAAG,CAAC,QAAQ,EAAE,CAAC;oBACjB,IAAI,CAAC,UAAU,CACb,QAAQ,CAAC,UAAU,CAAC,wBAAwB,EAAE;wBAC5C,UAAU,CAAC,IAAI,CAAC;wBAChB,MAAM,CAAC,IAAI,CAAC,GAAG,CAAC,OAAO,CAAC,KAAK,CAAC,CAAC,MAAM,IAAI,CAAC;wBAC1C,GAAG,CAAC,QAAQ;qBACb,CAAC,CACH,CAAC;gBACJ,CAAC;YACH,CAAC;QACH,CAAC,CAAC,CAAC;IACL,CAAC"}

package/lib/commands/org/audit/run.d.ts DELETED Viewed

@@ -1,22 +0,0 @@
-import { Interfaces } from '@oclif/core';
-import { SfCommand } from '@salesforce/sf-plugins-core';
-import { AuditResult } from '../../../libs/core/result-types.js';
-export type OrgAuditRunResult = AuditResult & {
-    filePath: string;
-};
-export default class OrgAuditRun extends SfCommand<OrgAuditRunResult> {
-    static readonly summary: string;
-    static readonly description: string;
-    static readonly examples: string[];
-    static readonly flags: {
-        'target-org': Interfaces.OptionFlag<import("@salesforce/core").Org, Interfaces.CustomOptions>;
-        'source-dir': Interfaces.OptionFlag<string, Interfaces.CustomOptions>;
-        'api-version': Interfaces.OptionFlag<string | undefined, Interfaces.CustomOptions>;
-    };
-    run(): Promise<OrgAuditRunResult>;
-    private printResults;
-    private printPoliciesSummary;
-    private printExecutedRulesSummary;
-    private printRuleViolations;
-    private writeReport;
-}

package/lib/commands/org/audit/run.js DELETED Viewed

@@ -1,119 +0,0 @@
-import { writeFileSync } from 'node:fs';
-import path from 'node:path';
-import { SfCommand, Flags, StandardColors } from '@salesforce/sf-plugins-core';
-import { Messages } from '@salesforce/core';
-import { startAuditRun } from '../../../libs/core/auditRun.js';
-import AuditRunMultiStageOutput from '../../../ux/auditRunMultiStage.js';
-import { capitalize } from '../../../libs/core/utils.js';
-Messages.importMessagesDirectoryFromMetaUrl(import.meta.url);
-const messages = Messages.loadMessages('@j-schreiber/sf-cli-security-audit', 'org.audit.run');
-export default class OrgAuditRun extends SfCommand {
-    static summary = messages.getMessage('summary');
-    static description = messages.getMessage('description');
-    static examples = messages.getMessages('examples');
-    static flags = {
-        'target-org': Flags.requiredOrg({
-            summary: messages.getMessage('flags.target-org.summary'),
-            char: 'o',
-            required: true,
-        }),
-        'source-dir': Flags.directory({
-            required: false,
-            char: 'd',
-            summary: messages.getMessage('flags.source-dir.summary'),
-            default: '',
-        }),
-        'api-version': Flags.orgApiVersion(),
-    };
-    async run() {
-        const { flags } = await this.parse(OrgAuditRun);
-        const stageOutput = AuditRunMultiStageOutput.create({
-            directoryRootPath: flags['source-dir'],
-            targetOrg: flags['target-org'].getUsername() ?? flags['target-org'].getOrgId(),
-            jsonEnabled: flags.json,
-        });
-        stageOutput.start();
-        const auditRun = startAuditRun(flags['source-dir']);
-        stageOutput.startPolicyResolve(auditRun);
-        await auditRun.resolve(flags['target-org'].getConnection(flags['api-version']));
-        stageOutput.startRuleExecution();
-        const partialResult = await auditRun.execute(flags['target-org'].getConnection(flags['api-version']));
-        const result = { orgId: flags['target-org'].getOrgId(), ...partialResult };
-        stageOutput.finish();
-        this.printResults(result);
-        const filePath = this.writeReport(result, flags);
-        return { ...result, filePath };
-    }
-    printResults(result) {
-        this.printPoliciesSummary(result);
-        Object.entries(result.policies).forEach(([policyName, policyDetails]) => {
-            this.printExecutedRulesSummary(policyName, policyDetails);
-            this.printRuleViolations(policyDetails.executedRules);
-        });
-    }
-    printPoliciesSummary(result) {
-        const polSummaries = transposePoliciesToTable(result);
-        if (result.isCompliant) {
-            this.logSuccess(messages.getMessage('success.all-policies-compliant'));
-            this.log('');
-        }
-        else {
-            this.log(StandardColors.error(messages.getMessage('summary-non-compliant')));
-            this.log('');
-        }
-        this.table({ data: polSummaries, title: '=== Summary ===', titleOptions: { bold: true } });
-    }
-    printExecutedRulesSummary(policyName, policyDetails) {
-        if (!policyDetails.enabled) {
-            return;
-        }
-        const rulesSummary = transposeExecutedPolicyRules(policyDetails);
-        if (rulesSummary.length > 0) {
-            this.table({
-                data: rulesSummary,
-                title: `--- Executed Rules for ${capitalize(policyName)} ---`,
-                titleOptions: { underline: true },
-            });
-        }
-    }
-    printRuleViolations(executedRules) {
-        Object.values(executedRules)
-            .filter((ruleDetails) => !ruleDetails.isCompliant)
-            .forEach((uncompliantRule) => {
-            this.table({ data: uncompliantRule.violations, title: `Violations for ${uncompliantRule.ruleName}` });
-        });
-    }
-    writeReport(result, flags) {
-        const fileName = `report_${flags['target-org'].getOrgId()}_${Date.now()}.json`;
-        const fullPath = path.join(flags['source-dir'], fileName);
-        writeFileSync(fullPath, JSON.stringify(result, null, 2));
-        this.info(messages.getMessage('info.report-file-location', [fullPath]));
-        return fullPath;
-    }
-}
-function transposePoliciesToTable(result) {
-    return Object.entries(result.policies)
-        .filter(([, policyDetails]) => policyDetails.enabled)
-        .map(([policyName, policyDetails]) => {
-        const rulesExecuted = policyDetails?.executedRules ? Object.keys(policyDetails.executedRules).length : 0;
-        return {
-            policy: capitalize(policyName),
-            isCompliant: policyDetails.isCompliant,
-            rulesExecuted,
-            auditedEntities: policyDetails.auditedEntities?.length ?? 0,
-            ignoredEntities: policyDetails.ignoredEntities?.length ?? 0,
-        };
-    });
-}
-function transposeExecutedPolicyRules(result) {
-    return Object.entries(result.executedRules).map(([ruleName, ruleDetails]) => ({
-        rule: ruleName,
-        isCompliant: ruleDetails.isCompliant,
-        compliantEntities: ruleDetails.compliantEntities?.length ?? 0,
-        violatedEntities: ruleDetails.violatedEntities?.length ?? 0,
-        violations: ruleDetails.violations.length,
-        warnings: ruleDetails.warnings.length,
-        errors: ruleDetails.errors.length,
-    }));
-}
-//# sourceMappingURL=run.js.map

package/lib/commands/org/audit/run.js.map DELETED Viewed

@@ -1 +0,0 @@

- {"version":3,"file":"run.js","sourceRoot":"","sources":["../../../../src/commands/org/audit/run.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,aAAa,EAAE,MAAM,SAAS,CAAC;AACxC,OAAO,IAAI,MAAM,WAAW,CAAC;AAE7B,OAAO,EAAE,SAAS,EAAE,KAAK,EAAE,cAAc,EAAE,MAAM,6BAA6B,CAAC;AAC/E,OAAO,EAAE,QAAQ,EAAE,MAAM,kBAAkB,CAAC;AAE5C,OAAO,EAAE,aAAa,EAAE,MAAM,gCAAgC,CAAC;AAC/D,OAAO,wBAAwB,MAAM,mCAAmC,CAAC;AACzE,OAAO,EAAE,UAAU,EAAE,MAAM,6BAA6B,CAAC;AAEzD,QAAQ,CAAC,kCAAkC,CAAC,MAAM,CAAC,IAAI,CAAC,GAAG,CAAC,CAAC;AAC7D,MAAM,QAAQ,GAAG,QAAQ,CAAC,YAAY,CAAC,oCAAoC,EAAE,eAAe,CAAC,CAAC;AAQ9F,MAAM,CAAC,OAAO,OAAO,WAAY,SAAQ,SAA4B;IAC5D,MAAM,CAAU,OAAO,GAAG,QAAQ,CAAC,UAAU,CAAC,SAAS,CAAC,CAAC;IACzD,MAAM,CAAU,WAAW,GAAG,QAAQ,CAAC,UAAU,CAAC,aAAa,CAAC,CAAC;IACjE,MAAM,CAAU,QAAQ,GAAG,QAAQ,CAAC,WAAW,CAAC,UAAU,CAAC,CAAC;IAE5D,MAAM,CAAU,KAAK,GAAG;QAC7B,YAAY,EAAE,KAAK,CAAC,WAAW,CAAC;YAC9B,OAAO,EAAE,QAAQ,CAAC,UAAU,CAAC,0BAA0B,CAAC;YACxD,IAAI,EAAE,GAAG;YACT,QAAQ,EAAE,IAAI;SACf,CAAC;QACF,YAAY,EAAE,KAAK,CAAC,SAAS,CAAC;YAC5B,QAAQ,EAAE,KAAK;YACf,IAAI,EAAE,GAAG;YACT,OAAO,EAAE,QAAQ,CAAC,UAAU,CAAC,0BAA0B,CAAC;YACxD,OAAO,EAAE,EAAE;SACZ,CAAC;QACF,aAAa,EAAE,KAAK,CAAC,aAAa,EAAE;KACrC,CAAC;IAEK,KAAK,CAAC,GAAG;QACd,MAAM,EAAE,KAAK,EAAE,GAAG,MAAM,IAAI,CAAC,KAAK,CAAC,WAAW,CAAC,CAAC;QAChD,MAAM,WAAW,GAAG,wBAAwB,CAAC,MAAM,CAAC;YAClD,iBAAiB,EAAE,KAAK,CAAC,YAAY,CAAC;YACtC,SAAS,EAAE,KAAK,CAAC,YAAY,CAAC,CAAC,WAAW,EAAE,IAAI,KAAK,CAAC,YAAY,CAAC,CAAC,QAAQ,EAAE;YAC9E,WAAW,EAAE,KAAK,CAAC,IAAI;SACxB,CAAC,CAAC;QACH,WAAW,CAAC,KAAK,EAAE,CAAC;QACpB,MAAM,QAAQ,GAAG,aAAa,CAAC,KAAK,CAAC,YAAY,CAAC,CAAC,CAAC;QACpD,WAAW,CAAC,kBAAkB,CAAC,QAAQ,CAAC,CAAC;QACzC,MAAM,QAAQ,CAAC,OAAO,CAAC,KAAK,CAAC,YAAY,CAAC,CAAC,aAAa,CAAC,KAAK,CAAC,aAAa,CAAC,CAAC,CAAC,CAAC;QAChF,WAAW,CAAC,kBAAkB,EAAE,CAAC;QACjC,MAAM,aAAa,GAAG,MAAM,QAAQ,CAAC,OAAO,CAAC,KAAK,CAAC,YAAY,CAAC,CAAC,aAAa,CAAC,KAAK,CAAC,aAAa,CAAC,CAAC,CAAC,CAAC;QACtG,MAAM,MAAM,GAAG,EAAE,KAAK,EAAE,KAAK,CAAC,YAAY,CAAC,CAAC,QAAQ,EAAE,EAAE,GAAG,aAAa,EAAE,CAAC;QAC3E,WAAW,CAAC,MAAM,EAAE,CAAC;QACrB,IAAI,CAAC,YAAY,CAAC,MAAM,CAAC,CAAC;QAC1B,MAAM,QAAQ,GAAG,IAAI,CAAC,WAAW,CAAC,MAAM,EAAE,KAAK,CAAC,CAAC;QACjD,OAAO,EAAE,GAAG,MAAM,EAAE,QAAQ,EAAE,CAAC;IACjC,CAAC;IAEO,YAAY,CAAC,MAAmB;QACtC,IAAI,CAAC,oBAAoB,CAAC,MAAM,CAAC,CAAC;QAClC,MAAM,CAAC,OAAO,CAAC,MAAM,CAAC,QAAQ,CAAC,CAAC,OAAO,CAAC,CAAC,CAAC,UAAU,EAAE,aAAa,CAAC,EAAE,EAAE;YACtE,IAAI,CAAC,yBAAyB,CAAC,UAAU,EAAE,aAAa,CAAC,CAAC;YAC1D,IAAI,CAAC,mBAAmB,CAAC,aAAa,CAAC,aAAa,CAAC,CAAC;QACxD,CAAC,CAAC,CAAC;IACL,CAAC;IAEO,oBAAoB,CAAC,MAAmB;QAC9C,MAAM,YAAY,GAAG,wBAAwB,CAAC,MAAM,CAAC,CAAC;QACtD,IAAI,MAAM,CAAC,WAAW,EAAE,CAAC;YACvB,IAAI,CAAC,UAAU,CAAC,QAAQ,CAAC,UAAU,CAAC,gCAAgC,CAAC,CAAC,CAAC;YACvE,IAAI,CAAC,GAAG,CAAC,EAAE,CAAC,CAAC;QACf,CAAC;aAAM,CAAC;YACN,IAAI,CAAC,GAAG,CAAC,cAAc,CAAC,KAAK,CAAC,QAAQ,CAAC,UAAU,CAAC,uBAAuB,CAAC,CAAC,CAAC,CAAC;YAC7E,IAAI,CAAC,GAAG,CAAC,EAAE,CAAC,CAAC;QACf,CAAC;QACD,IAAI,CAAC,KAAK,CAAC,EAAE,IAAI,EAAE,YAAY,EAAE,KAAK,EAAE,iBAAiB,EAAE,YAAY,EAAE,EAAE,IAAI,EAAE,IAAI,EAAE,EAAE,CAAC,CAAC;IAC7F,CAAC;IAEO,yBAAyB,CAAC,UAAkB,EAAE,aAAgC;QACpF,IAAI,CAAC,aAAa,CAAC,OAAO,EAAE,CAAC;YAC3B,OAAO;QACT,CAAC;QACD,MAAM,YAAY,GAAG,4BAA4B,CAAC,aAAa,CAAC,CAAC;QACjE,IAAI,YAAY,CAAC,MAAM,GAAG,CAAC,EAAE,CAAC;YAC5B,IAAI,CAAC,KAAK,CAAC;gBACT,IAAI,EAAE,YAAY;gBAClB,KAAK,EAAE,0BAA0B,UAAU,CAAC,UAAU,CAAC,MAAM;gBAC7D,YAAY,EAAE,EAAE,SAAS,EAAE,IAAI,EAAE;aAClC,CAAC,CAAC;QACL,CAAC;IACH,CAAC;IAEO,mBAAmB,CAAC,aAAwD;QAClF,MAAM,CAAC,MAAM,CAAC,aAAa,CAAC;aACzB,MAAM,CAAC,CAAC,WAAW,EAAE,EAAE,CAAC,CAAC,WAAW,CAAC,WAAW,CAAC;aACjD,OAAO,CAAC,CAAC,eAAe,EAAE,EAAE;YAC3B,IAAI,CAAC,KAAK,CAAC,EAAE,IAAI,EAAE,eAAe,CAAC,UAAU,EAAE,KAAK,EAAE,kBAAkB,eAAe,CAAC,QAAQ,EAAE,EAAE,CAAC,CAAC;QACxG,CAAC,CAAC,CAAC;IACP,CAAC;IAEO,WAAW,CAAC,MAAmB,EAAE,KAAuB;QAC9D,MAAM,QAAQ,GAAG,UAAU,KAAK,CAAC,YAAY,CAAC,CAAC,QAAQ,EAAE,IAAI,IAAI,CAAC,GAAG,EAAE,OAAO,CAAC;QAC/E,MAAM,QAAQ,GAAG,IAAI,CAAC,IAAI,CAAC,KAAK,CAAC,YAAY,CAAC,EAAE,QAAQ,CAAC,CAAC;QAC1D,aAAa,CAAC,QAAQ,EAAE,IAAI,CAAC,SAAS,CAAC,MAAM,EAAE,IAAI,EAAE,CAAC,CAAC,CAAC,CAAC;QACzD,IAAI,CAAC,IAAI,CAAC,QAAQ,CAAC,UAAU,CAAC,2BAA2B,EAAE,CAAC,QAAQ,CAAC,CAAC,CAAC,CAAC;QACxE,OAAO,QAAQ,CAAC;IAClB,CAAC;;AAkBH,SAAS,wBAAwB,CAAC,MAAmB;IACnD,OAAO,MAAM,CAAC,OAAO,CAAC,MAAM,CAAC,QAAQ,CAAC;SACnC,MAAM,CAAC,CAAC,CAAC,EAAE,aAAa,CAAC,EAAE,EAAE,CAAC,aAAa,CAAC,OAAO,CAAC;SACpD,GAAG,CAAC,CAAC,CAAC,UAAU,EAAE,aAAa,CAAC,EAAE,EAAE;QACnC,MAAM,aAAa,GAAG,aAAa,EAAE,aAAa,CAAC,CAAC,CAAC,MAAM,CAAC,IAAI,CAAC,aAAa,CAAC,aAAa,CAAC,CAAC,MAAM,CAAC,CAAC,CAAC,CAAC,CAAC;QACzG,OAAO;YACL,MAAM,EAAE,UAAU,CAAC,UAAU,CAAC;YAC9B,WAAW,EAAE,aAAa,CAAC,WAAW;YACtC,aAAa;YACb,eAAe,EAAE,aAAa,CAAC,eAAe,EAAE,MAAM,IAAI,CAAC;YAC3D,eAAe,EAAE,aAAa,CAAC,eAAe,EAAE,MAAM,IAAI,CAAC;SAC5D,CAAC;IACJ,CAAC,CAAC,CAAC;AACP,CAAC;AAED,SAAS,4BAA4B,CAAC,MAAyB;IAC7D,OAAO,MAAM,CAAC,OAAO,CAAC,MAAM,CAAC,aAAa,CAAC,CAAC,GAAG,CAAC,CAAC,CAAC,QAAQ,EAAE,WAAW,CAAC,EAAE,EAAE,CAAC,CAAC;QAC5E,IAAI,EAAE,QAAQ;QACd,WAAW,EAAE,WAAW,CAAC,WAAW;QACpC,iBAAiB,EAAE,WAAW,CAAC,iBAAiB,EAAE,MAAM,IAAI,CAAC;QAC7D,gBAAgB,EAAE,WAAW,CAAC,gBAAgB,EAAE,MAAM,IAAI,CAAC;QAC3D,UAAU,EAAE,WAAW,CAAC,UAAU,CAAC,MAAM;QACzC,QAAQ,EAAE,WAAW,CAAC,QAAQ,CAAC,MAAM;QACrC,MAAM,EAAE,WAAW,CAAC,MAAM,CAAC,MAAM;KAClC,CAAC,CAAC,CAAC;AACN,CAAC"}

package/lib/commands/org/scan/user-perms.d.ts DELETED Viewed

@@ -1,20 +0,0 @@
-import { SfCommand } from '@salesforce/sf-plugins-core';
-import { QuickScanResult } from '../../../libs/quick-scan/types.js';
-import { EntityScanStatus } from '../../../libs/quick-scan/userPermissionScanner.js';
-export type OrgUserPermScanResult = QuickScanResult;
-export default class OrgUserPermScan extends SfCommand<OrgUserPermScanResult> {
-    static readonly summary: string;
-    static readonly description: string;
-    static readonly examples: string[];
-    static readonly flags: {
-        name: import("@oclif/core/interfaces").OptionFlag<string[], import("@oclif/core/interfaces").CustomOptions>;
-        'target-org': import("@oclif/core/interfaces").OptionFlag<import("@salesforce/core").Org, import("@oclif/core/interfaces").CustomOptions>;
-        'api-version': import("@oclif/core/interfaces").OptionFlag<string | undefined, import("@oclif/core/interfaces").CustomOptions>;
-    };
-    run(): Promise<OrgUserPermScanResult>;
-    private reportProgress;
-    private print;
-    private printSummary;
-    private printPermissionResults;
-}
-export declare function isEntityStatus(cls: unknown): cls is EntityScanStatus;

package/lib/commands/org/scan/user-perms.js DELETED Viewed

@@ -1,87 +0,0 @@
-import { SfCommand, Flags } from '@salesforce/sf-plugins-core';
-import { Messages } from '@salesforce/core';
-import UserPermissionScanner from '../../../libs/quick-scan/userPermissionScanner.js';
-import { capitalize } from '../../../libs/core/utils.js';
-Messages.importMessagesDirectoryFromMetaUrl(import.meta.url);
-const messages = Messages.loadMessages('@j-schreiber/sf-cli-security-audit', 'org.scan.user-perms');
-export default class OrgUserPermScan extends SfCommand {
-    static summary = messages.getMessage('summary');
-    static description = messages.getMessage('description');
-    static examples = messages.getMessages('examples');
-    static flags = {
-        name: Flags.string({
-            summary: messages.getMessage('flags.name.summary'),
-            description: messages.getMessage('flags.name.description'),
-            char: 'n',
-            multiple: true,
-            required: true,
-        }),
-        'target-org': Flags.requiredOrg({
-            summary: messages.getMessage('flags.target-org.summary'),
-            char: 'o',
-            required: true,
-        }),
-        'api-version': Flags.orgApiVersion(),
-    };
-    async run() {
-        const { flags } = await this.parse(OrgUserPermScan);
-        const scanner = new UserPermissionScanner();
-        scanner.on('progress', this.reportProgress);
-        const result = await scanner.quickScan({
-            targetOrg: flags['target-org'].getConnection(flags['api-version']),
-            permissions: flags.name,
-        });
-        this.print(result);
-        return result;
-    }
-    reportProgress = (event) => {
-        if (event.status === 'Pending') {
-            this.spinner.start('Scanning');
-        }
-        const counters = [];
-        Object.entries(event).forEach(([propName, entityStatus]) => {
-            if (isEntityStatus(entityStatus)) {
-                counters.push(`${capitalize(propName)} (${entityStatus.resolved}/${entityStatus.total})`);
-            }
-        });
-        this.spinner.status = counters.join(' | ');
-        if (event.status === 'Completed') {
-            this.spinner.stop();
-            this.logSuccess(messages.getMessage('success.scanned-entities-count', [event.profiles.total, event.permissionSets.total]));
-            this.log();
-        }
-    };
-    print(result) {
-        this.printSummary(result);
-        Object.entries(result.permissions).forEach(([permName, permResult]) => {
-            this.printPermissionResults(permName, permResult);
-        });
-    }
-    printSummary(result) {
-        const data = [];
-        Object.entries(result.permissions).forEach(([permissionName, permResult]) => {
-            data.push({
-                permissionName,
-                profiles: permResult.profiles.length,
-                permissionSets: permResult.permissionSets.length,
-            });
-        });
-        this.table({ data, title: '=== Summary ===', titleOptions: { bold: true } });
-    }
-    printPermissionResults(permissionName, result) {
-        const data = [];
-        result.profiles.forEach((entityName) => {
-            data.push({ entityName, type: 'Profile' });
-        });
-        result.permissionSets.forEach((entityName) => {
-            data.push({ entityName, type: 'Permission Set' });
-        });
-        if (data.length > 0) {
-            this.table({ data, title: permissionName, titleOptions: { underline: true } });
-        }
-    }
-}
-export function isEntityStatus(cls) {
-    return cls.total !== undefined && cls.resolved !== undefined;
-}
-//# sourceMappingURL=user-perms.js.map

package/lib/commands/org/scan/user-perms.js.map DELETED Viewed

@@ -1 +0,0 @@

- {"version":3,"file":"user-perms.js","sourceRoot":"","sources":["../../../../src/commands/org/scan/user-perms.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,SAAS,EAAE,KAAK,EAAE,MAAM,6BAA6B,CAAC;AAC/D,OAAO,EAAE,QAAQ,EAAE,MAAM,kBAAkB,CAAC;AAE5C,OAAO,qBAGN,MAAM,mDAAmD,CAAC;AAC3D,OAAO,EAAE,UAAU,EAAE,MAAM,6BAA6B,CAAC;AAEzD,QAAQ,CAAC,kCAAkC,CAAC,MAAM,CAAC,IAAI,CAAC,GAAG,CAAC,CAAC;AAC7D,MAAM,QAAQ,GAAG,QAAQ,CAAC,YAAY,CAAC,oCAAoC,EAAE,qBAAqB,CAAC,CAAC;AAIpG,MAAM,CAAC,OAAO,OAAO,eAAgB,SAAQ,SAAgC;IACpE,MAAM,CAAU,OAAO,GAAG,QAAQ,CAAC,UAAU,CAAC,SAAS,CAAC,CAAC;IACzD,MAAM,CAAU,WAAW,GAAG,QAAQ,CAAC,UAAU,CAAC,aAAa,CAAC,CAAC;IACjE,MAAM,CAAU,QAAQ,GAAG,QAAQ,CAAC,WAAW,CAAC,UAAU,CAAC,CAAC;IAE5D,MAAM,CAAU,KAAK,GAAG;QAC7B,IAAI,EAAE,KAAK,CAAC,MAAM,CAAC;YACjB,OAAO,EAAE,QAAQ,CAAC,UAAU,CAAC,oBAAoB,CAAC;YAClD,WAAW,EAAE,QAAQ,CAAC,UAAU,CAAC,wBAAwB,CAAC;YAC1D,IAAI,EAAE,GAAG;YACT,QAAQ,EAAE,IAAI;YACd,QAAQ,EAAE,IAAI;SACf,CAAC;QACF,YAAY,EAAE,KAAK,CAAC,WAAW,CAAC;YAC9B,OAAO,EAAE,QAAQ,CAAC,UAAU,CAAC,0BAA0B,CAAC;YACxD,IAAI,EAAE,GAAG;YACT,QAAQ,EAAE,IAAI;SACf,CAAC;QACF,aAAa,EAAE,KAAK,CAAC,aAAa,EAAE;KACrC,CAAC;IAEK,KAAK,CAAC,GAAG;QACd,MAAM,EAAE,KAAK,EAAE,GAAG,MAAM,IAAI,CAAC,KAAK,CAAC,eAAe,CAAC,CAAC;QACpD,MAAM,OAAO,GAAG,IAAI,qBAAqB,EAAE,CAAC;QAC5C,OAAO,CAAC,EAAE,CAAC,UAAU,EAAE,IAAI,CAAC,cAAc,CAAC,CAAC;QAC5C,MAAM,MAAM,GAAG,MAAM,OAAO,CAAC,SAAS,CAAC;YACrC,SAAS,EAAE,KAAK,CAAC,YAAY,CAAC,CAAC,aAAa,CAAC,KAAK,CAAC,aAAa,CAAC,CAAC;YAClE,WAAW,EAAE,KAAK,CAAC,IAAI;SACxB,CAAC,CAAC;QACH,IAAI,CAAC,KAAK,CAAC,MAAM,CAAC,CAAC;QACnB,OAAO,MAAM,CAAC;IAChB,CAAC;IAEO,cAAc,GAAG,CAAC,KAAsB,EAAQ,EAAE;QACxD,IAAI,KAAK,CAAC,MAAM,KAAK,SAAS,EAAE,CAAC;YAC/B,IAAI,CAAC,OAAO,CAAC,KAAK,CAAC,UAAU,CAAC,CAAC;QACjC,CAAC;QACD,MAAM,QAAQ,GAAa,EAAE,CAAC;QAC9B,MAAM,CAAC,OAAO,CAAC,KAAK,CAAC,CAAC,OAAO,CAAC,CAAC,CAAC,QAAQ,EAAE,YAAY,CAAC,EAAE,EAAE;YACzD,IAAI,cAAc,CAAC,YAAY,CAAC,EAAE,CAAC;gBACjC,QAAQ,CAAC,IAAI,CAAC,GAAG,UAAU,CAAC,QAAQ,CAAC,KAAK,YAAY,CAAC,QAAS,IAAI,YAAY,CAAC,KAAM,GAAG,CAAC,CAAC;YAC9F,CAAC;QACH,CAAC,CAAC,CAAC;QACH,IAAI,CAAC,OAAO,CAAC,MAAM,GAAG,QAAQ,CAAC,IAAI,CAAC,KAAK,CAAC,CAAC;QAC3C,IAAI,KAAK,CAAC,MAAM,KAAK,WAAW,EAAE,CAAC;YACjC,IAAI,CAAC,OAAO,CAAC,IAAI,EAAE,CAAC;YACpB,IAAI,CAAC,UAAU,CACb,QAAQ,CAAC,UAAU,CAAC,gCAAgC,EAAE,CAAC,KAAK,CAAC,QAAQ,CAAC,KAAK,EAAE,KAAK,CAAC,cAAc,CAAC,KAAK,CAAC,CAAC,CAC1G,CAAC;YACF,IAAI,CAAC,GAAG,EAAE,CAAC;QACb,CAAC;IACH,CAAC,CAAC;IAEM,KAAK,CAAC,MAAuB;QACnC,IAAI,CAAC,YAAY,CAAC,MAAM,CAAC,CAAC;QAC1B,MAAM,CAAC,OAAO,CAAC,MAAM,CAAC,WAAW,CAAC,CAAC,OAAO,CAAC,CAAC,CAAC,QAAQ,EAAE,UAAU,CAAC,EAAE,EAAE;YACpE,IAAI,CAAC,sBAAsB,CAAC,QAAQ,EAAE,UAAU,CAAC,CAAC;QACpD,CAAC,CAAC,CAAC;IACL,CAAC;IAEO,YAAY,CAAC,MAAuB;QAC1C,MAAM,IAAI,GAAgF,EAAE,CAAC;QAC7F,MAAM,CAAC,OAAO,CAAC,MAAM,CAAC,WAAW,CAAC,CAAC,OAAO,CAAC,CAAC,CAAC,cAAc,EAAE,UAAU,CAAC,EAAE,EAAE;YAC1E,IAAI,CAAC,IAAI,CAAC;gBACR,cAAc;gBACd,QAAQ,EAAE,UAAU,CAAC,QAAQ,CAAC,MAAM;gBACpC,cAAc,EAAE,UAAU,CAAC,cAAc,CAAC,MAAM;aACjD,CAAC,CAAC;QACL,CAAC,CAAC,CAAC;QACH,IAAI,CAAC,KAAK,CAAC,EAAE,IAAI,EAAE,KAAK,EAAE,iBAAiB,EAAE,YAAY,EAAE,EAAE,IAAI,EAAE,IAAI,EAAE,EAAE,CAAC,CAAC;IAC/E,CAAC;IAEO,sBAAsB,CAAC,cAAsB,EAAE,MAA4B;QACjF,MAAM,IAAI,GAAgD,EAAE,CAAC;QAC7D,MAAM,CAAC,QAAQ,CAAC,OAAO,CAAC,CAAC,UAAU,EAAE,EAAE;YACrC,IAAI,CAAC,IAAI,CAAC,EAAE,UAAU,EAAE,IAAI,EAAE,SAAS,EAAE,CAAC,CAAC;QAC7C,CAAC,CAAC,CAAC;QACH,MAAM,CAAC,cAAc,CAAC,OAAO,CAAC,CAAC,UAAU,EAAE,EAAE;YAC3C,IAAI,CAAC,IAAI,CAAC,EAAE,UAAU,EAAE,IAAI,EAAE,gBAAgB,EAAE,CAAC,CAAC;QACpD,CAAC,CAAC,CAAC;QACH,IAAI,IAAI,CAAC,MAAM,GAAG,CAAC,EAAE,CAAC;YACpB,IAAI,CAAC,KAAK,CAAC,EAAE,IAAI,EAAE,KAAK,EAAE,cAAc,EAAE,YAAY,EAAE,EAAE,SAAS,EAAE,IAAI,EAAE,EAAE,CAAC,CAAC;QACjF,CAAC;IACH,CAAC;;AAGH,MAAM,UAAU,cAAc,CAAC,GAAY;IACzC,OAAQ,GAAwB,CAAC,KAAK,KAAK,SAAS,IAAK,GAAwB,CAAC,QAAQ,KAAK,SAAS,CAAC;AAC3G,CAAC"}